Join Deloitte Cyber to help organizations strengthen cloud security operations and modernize threat detection capabilities. As a Consultant, you will support clients in designing, deploying, and optimizing Google SecOps solutions that improve visibility, automation, and incident response. This role offers the opportunity to work across security operations, cloud platforms, and analytics to help clients build scalable and resilient cyber programs.
Work you'll do
As a Consultant on the Cyber Defense & Resilience team, you will be responsible for:
- Supporting the design and implementation of secure, scalable Google SecOps architectures for security information and event management and security orchestration, automation, and response deployments
- Assisting with log ingestion pipeline deployment using data fabric tools, cloud feeds, and application programming interface integrations
- Collaborating with security operations center analysts and threat detection engineers to develop and tune detection rules for enterprise environments
- Translating security operations center processes into automation playbooks that improve alert triage and response efficiency
- Developing integrations across third-party platforms, security tools, and Google SecOps to support data ingestion, alert enrichment, and response activities
The team
Cyber Defense & Resilience teams assist clients in defending against advanced threats by transforming security operations, and by monitoring technology, data analytics, and threat intelligence. They help manage and protect dynamic attack surfaces and provide rapid crisis and cyber incident response, thereby ensuring that clients can be ready for, respond to, and recover from business disruptions. Examples of work include Operational Resilience, Crisis & Incident Response, and Security Operations Center Transformation.
Location: Bangalore, Hyderabad, Pune, Chennai
Shift Timings: General
Qualifications
Required:
- Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field; or equivalent work experience
- 3-6 years of experience in security operations, threat detection engineering, or enterprise information technology security
- Experience with Google Cloud SecOps tools and architecture, including security information and event management and security orchestration, automation, and response capabilities
- Experience using Python for automation and integration development
- Experience using Gostash or Logstash for log normalization and parsing
- Experience with extract, transform, and load pipelines and associated tools such as Cribl, Bindplane, NXLog, or Kafka
- Knowledge of security frameworks such as MITRE ATT&CK and Cyber Kill Chain
Preferred:
- Google Cloud Professional Architect, Google Cloud Professional Security Engineer, or Certified Cloud Security Professional certification
- Experience with threat hunting and cyber threat intelligence practices
- Experience with data fabric tools such as Bindplane or Cribl
- Experience with multi-cloud environments, including Amazon Web Services or Microsoft Azure
- Experience with security information and event management and security orchestration, automation, and response tools such as Splunk or Cortex XSOAR
- Experience with VirusTotal, Mandiant, or Google Threat Intelligence
#Cyber_Defense & Resilience